We are trying to allow limited analyst to be able to see tickets associated to CI

We have created two data partitions for two different analyst types. One analyst which we refer to as Level 1 has access to all tickets even those they are not a member of the group. Our other analyst partition is limited only to the tickets that they are a member of the group(s). We would like to be able to give the rights to this limited analyst to see tickets associated with CIs they are responsible for. Is this possible? We tried adding this to the Call_Req constraint but it is giving us error

OR (change.group.[group]group_list.member IN @root.id) OR (caused_by_chg.group.[group]group_list.member IN @root.id) OR (change.assignee = @root.id) OR (caused_by_chg.assignee = @root.id)

When you tested the constraint that you posted here, did you do it against the call call_req table or the change table? The constraint that you posted has references to the change object, not the call request object, so I am not sure it would accept that.

As for the question of how you can allow the limited analyst to see tickets associated with CIs they are responsible for - there does not appear possible because you cannot cross objects in a data partition constraint. There would have to be an attribute within the object that you are putting the constraint on (requests or change orders etc.) that would be specific to those users, but there is no mechanism to check if they are responsible for a CI.

When you tested the constraint that you posted here, did you do it against the call call_req table or the change table? The constraint that you posted has references to the change object, not the call request object, so I am not sure it would accept that.

As for the question of how you can allow the limited analyst to see tickets associated with CIs they are responsible for - there does not appear possible because you cannot cross objects in a data partition constraint. There would have to be an attribute within the object that you are putting the constraint on (requests or change orders etc.) that would be specific to those users, but there is no mechanism to check if they are responsible for a CI.